==============================================================================
Vulnerable Software: cPanel version : 11.32.5 (build 11)-11.32.5.11 [ cPanel Pro ]
Vulnerability: CSRF
Vendor: cpanel.net
==============================================================================
=====================================================================
Tested version: Your current cPanel version : 11.32.5 (build 11)-11.32.5.11 [ cPanel Pro ]
Aka: Cpanel Accelerated 2
via
WHM 11.32.5 (build 11)
=====================================================================
CSRF: Drop Database: (Method $_GET)
Here we are going to drop database named: armenian_music
=====================================================================
CSRF: Drop mysql user: (Method $_GET)
Here we are going to drop mysql user named: armenian_adserver ))
=====================================================================
CSRF: Change email address: (Contact Information & Preferences) (Method $_GET)
Changing email address to: owned_and_owned_again@gmail.tld
=====================================================================
CSRF adding FTP account:
username: akastep
password: akastep
host is target host.
=====================================================================
CSRF Drop FTP account:
Deletes existent ftp account named: axaxa
=====================================================================
CSRF change Apache handler:
(Parse .gif file as php script)
=====================================================================
CSRF Delete handler:
=====================================================================
WHM 11.32.5 (build 11)
CSRF: Add Reseller+setup
with domain: owned.com
username: owned111
password: MYVERYSTRONGGOESHERE
And contact email: owned@owned1.you
=====================================================================
================================================
SHOUTZ+RESPECTS+GREAT THANKS TO ALL MY FRIENDS:
================================================
packetstormsecurity.org
packetstormsecurity.com
packetstormsecurity.net
securityfocus.com
cxsecurity.com
security.nnov.ru
securtiyvulns.com
securitylab.ru
secunia.com
securityhome.eu
exploitsdownload.com
exploit-db.com
osvdb.com
websecurity.com.ua
to all Aa Team + to all Azerbaijan Black HatZ +
*Especially to my bro CAMOUFL4G3 *
Also special thanks to: ottoman38 & HERO_AZE
================================================
/AkaStep